Experienced Cloud Security Platform Engineer – Remote Google Public Sector Incident Response & SOC Operations Specialist

About arenaflex: Powering Secure Innovation in the Public Sector

arenaflex stands at the forefront of digital transformation, bringing world-class cloud expertise to the mission of government and education. In partnership with arenaflex, organizations are redefining what’s possible when secure cloud infrastructure meets the complex demands of public sector institutions. Our team operates at the intersection of innovation, security, and operational excellence—helping federal, state, local, and educational entities accelerate their modernization journeys while protecting the data, systems, and citizens they serve.

We are looking for a passionate, highly skilled Cloud Security Platform Engineer to join our growing remote team and play a mission-critical role in safeguarding Google Cloud environments used by some of the nation’s most important institutions. If you thrive in fast-paced, high-stakes environments where your work directly contributes to national security, digital trust, and operational resilience, this opportunity is built for you.

Position Overview

As a Cloud Security Platform Engineer supporting arenaflex’s public sector clients, you will be the technical anchor for cloud security operations across Google Cloud Platform (GCP) and Workspace environments. You will design, deploy, and manage advanced security tooling, build automated detection and response workflows, lead incident investigations, and collaborate with Security Operations Center (SOC) teams to continuously strengthen our security posture.

This is not a routine monitoring role. You will engineer the systems, processes, and playbooks that allow arenaflex to detect threats faster, respond smarter, and stay ahead of adversaries in an ever-evolving threat landscape. You will be empowered to innovate, automate, and influence the broader security strategy for arenaflex’s most strategic public sector engagements.

Key Responsibilities

• Partner closely with SOC analysts, cloud engineers, and cross-functional stakeholders to design, implement, and maintain a resilient, best-in-class cloud security operations environment.
• Deploy, configure, and optimize native and third-party security tools within GCP and Workspace, including SIEM platforms, EDR solutions, IDS/IPS, and SecOps tooling such as Google SecOps, Chronicle, ElasticSearch, SPLUNK, and Trellix EDR.
• Develop and automate cloud security monitoring, alerting, and detection engineering pipelines to ensure rapid identification of threats, misconfigurations, and anomalous behavior.
• Build, refine, and operationalize incident response playbooks for cloud-specific scenarios—including identity compromise, data exfiltration, privilege escalation, and workload compromise.
• Lead end-to-end incident response investigations, including triage, containment, eradication, recovery, and post-incident reporting.
• Conduct forensic analysis across network, endpoint, memory, disk, and cloud-native telemetry to reconstruct attack timelines and identify root causes.
• Collaborate with engineering and product teams to embed security-by-design principles into cloud architectures and deployments.
• Perform Security Impact Assessments (SIAs) and produce formal reporting aligned with public sector compliance and regulatory frameworks.
• Mentor Level 1 analysts and serve as a technical escalation point for complex cloud security events.
• Document incidents, response actions, and lessons learned within ticketing and case management platforms such as ServiceNow.
• Continuously evaluate emerging threats, vulnerabilities, and tooling to enhance arenaflex’s detection capabilities and overall security maturity.
• Communicate findings, risks, and recommendations to both technical and executive audiences in clear, actionable formats.

Essential Qualifications

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field—or equivalent practical experience.
• Minimum of 6 years of experience in system design or software development in at least one programming language (such as Java, C++, Python, or Go).
• Minimum of 6 years of experience working with technical investigative processes and managing internal or external partners, vendors, or clients.
• Hands-on experience conducting incident response investigations, forensic analysis, and remediation activities.
• Strong background in network forensics, malware analysis, cloud forensics, and disk/memory forensics.
• Active or eligibility to obtain a Secret US Government Trust status (required for handling sensitive public sector workloads).
• Deep understanding of cloud security principles, including identity and access management, network segmentation, encryption, logging, and threat detection in cloud environments.

Preferred Qualifications

• Hands-on experience with SIEM event analysis, incident triage, and threat hunting.
• Experience conducting Security Impact Assessments (SIAs) and producing formal compliance reporting.
• Deep familiarity with SecStack tooling ecosystems, including Google SecOps/Chronicle, SCC, SPLUNK, ElasticSearch, Trellix Endpoint Detection and Response (EDR), and IDS/IPS platforms.
• Prior experience providing Level 1 analyst support and technical mentorship within a SOC environment.
• Working knowledge of Security Incident Management workflows, including ticketing, documentation, and lifecycle tracking within platforms such as ServiceNow.
• Relevant industry certifications such as GIAC, OSCP, CISSP, GCP Professional Cloud Security Engineer, or equivalent.
• Experience working within or supporting US public sector, federal, state, or educational clients.

Core Skills and Competencies for Success

To excel in this role at arenaflex, you will bring a unique blend of deep technical expertise, analytical thinking, and exceptional collaboration skills. The following competencies define success:

• Cloud Security Mastery: Deep expertise in GCP and Workspace security architectures, services, and native controls.
• Incident Response Leadership: Calm, methodical approach to managing high-pressure security incidents with clear decision-making under stress.
• Automation Mindset: Ability to build repeatable, scalable automations that reduce manual toil and accelerate response.
• Forensic Acumen: Skilled in collecting, preserving, and analyzing digital evidence across diverse environments.
• Threat Intelligence Awareness: Continuous awareness of emerging adversary tactics, techniques, and procedures (TTPs).
• Communication Excellence: Ability to translate complex technical findings into clear, actionable narratives for varied audiences.
• Mentorship and Leadership: A natural inclination to uplift junior analysts, share knowledge, and raise the bar for the entire team.
• Customer-Centric Engineering: Commitment to delivering secure, reliable solutions that meet the unique mission needs of public sector clients.

Career Growth and Learning Opportunities at arenaflex

At arenaflex, we believe that investing in our people is the foundation of our success. As a Cloud Security Platform Engineer, you will have access to:

• Continuous learning budgets for certifications, conferences, and advanced training programs.
• Structured career progression paths across engineering, architecture, and leadership tracks.
• Mentorship from senior engineers and security leaders with deep public sector expertise.
• Exposure to cutting-edge cloud security challenges across high-impact government and education engagements.
• Opportunities to contribute to open-source security tooling, publish thought leadership, and represent arenaflex at industry events.
• A culture that rewards curiosity, innovation, and ownership of outcomes.

Work Environment and Company Culture

arenaflex is a remote-first organization that values flexibility, trust, and results. Our team members are distributed across the United States, collaborating virtually while maintaining a strong sense of community and shared purpose. We cultivate an inclusive, supportive environment where diverse perspectives are celebrated, and every team member has a voice.

Our culture is grounded in:

• Mission-Driven Work: Every project at arenaflex supports institutions that serve the public good.
• Trust and Autonomy: We hire exceptional people and empower them to do their best work.
• Collaboration and Respect: We win together, share knowledge openly, and lift each other up.
• Continuous Improvement: We embrace feedback, iterate rapidly, and never settle for “good enough.”
• Wellbeing and Balance: We respect personal time, encourage healthy boundaries, and prioritize sustainable performance.

Compensation, Perks, and Benefits

arenaflex offers a competitive compensation package designed to attract and retain top-tier security talent. For this role, the anticipated annual base compensation ranges from approximately $35 to $40 per hour, depending on experience, skills, and geographic location, with opportunities for performance-based incentives. Our benefits typically include:

• Comprehensive medical, dental, and vision coverage.
• Generous paid time off, holidays, and flexible leave policies.
• Retirement savings plans with company matching contributions.
• Professional development stipends and certification reimbursement.
• Home office setup support for remote team members.
• Wellness programs, mental health resources, and employee assistance programs.

Final compensation will be determined based on the candidate’s skills, experience, and work location. Our recruitment team will discuss specific details during the interview process.

Why You Should Apply to arenaflex

This is more than a job—it is an opportunity to defend the systems and data that power critical public services across the United States. As a Cloud Security Platform Engineer at arenaflex, you will be part of a team that values excellence, embraces innovation, and is deeply committed to making a measurable impact.

If you are ready to bring your technical expertise, curiosity, and passion for security to a role where it truly matters, we encourage you to apply. Join arenaflex and help us shape the future of secure cloud computing for the public sector. We look forward to reviewing your application and exploring how your unique talents can advance our shared mission.